<!DOCTYPE html>
<meta charset="utf-8">
<title>JavaScript: the Trust Token API XHR interface correctly validates its parameters</title>
<script src="/resources/testharness.js"></script>
<script src="/resources/testharnessreport.js"></script>
<script>
  'use strict';

  test(() => {
    assert_throws_dom("InvalidStateError", () => {
      let request = new XMLHttpRequest();
      request.setTrustToken({
        type: 'token-request'
      });
    });
  }, 'Setting XHR Trust Tokens parameters requires that the XHR request be open.');

  test(() => {
    assert_throws_dom("InvalidStateError", () => {
      let request = new XMLHttpRequest();
      request.open('GET', 'https://trusttoken.example');
      request.send();
      request.setTrustToken({
        type: 'token-request'
      });
    });
  }, 'Setting XHR Trust Tokens parameters requires that the XHR request not have been sent.');

  test(() => {
    assert_throws_js(TypeError, () => {
      let request = new XMLHttpRequest();
      request.open('GET', 'https://trusttoken.example');
      request.setTrustToken({});
    });
  }, 'Trust Tokens operations require present `type` values.');

  test(() => {
    assert_throws_js(TypeError, () => {
      let request = new XMLHttpRequest();
      request.open('GET', 'https://trusttoken.example');
      request.setTrustToken({
        type: "invalid"
      });
    });
  }, 'Trust Tokens operations require valid `type` values.');

  test(() => {
    assert_throws_js(TypeError, () => {
      let request = new XMLHttpRequest();
      request.open('GET', 'https://trusttoken.example');
      request.setTrustToken({
        type: "token-request",
        signRequestData: "not a member of the signRequestData enum"
      });
    });
  }, 'Trust Tokens operations require valid `signRequestData` values, if provided.');

  test(() => {
    assert_throws_js(TypeError, () => {
      let request = new XMLHttpRequest();
      request.open('GET', 'https://trusttoken.example');
      request.setTrustToken({
        type: "token-request",
        refreshPolicy: "not a member of the refreshPolicy enum",
      });
    });
  }, 'Trust Tokens operations require valid `refreshPolicy:` values, if provided.');

  test(() => {
    assert_throws_js(TypeError, () => {
      let request = new XMLHttpRequest();
      request.open('GET', 'https://trusttoken.example');
      request.setTrustToken({
        type: "send-redemption-record",
        issuers: []
      });
    });
  }, 'Trust Tokens signing operations require at least one issuer URL.');

  test(() => {
    assert_throws_js(TypeError, () => {
      let request = new XMLHttpRequest();
      request.open('GET', 'https://trusttoken.example');
      request.setTrustToken({
        type: "send-redemption-record",
        issuers: [3]
      });
    });
  }, 'Trust Tokens operations require string issuer URLs, if provided.');

  test(() => {
    assert_throws_js(TypeError, () => {
      let request = new XMLHttpRequest();
      request.open('GET', 'https://trusttoken.example');
      request.setTrustToken({
        type: "send-redemption-record",
        issuers: ["not a valid URL"]
      });
    });
  }, 'Trust Tokens operations require valid issuer URLs, if provided.');

  test(() => {
    assert_throws_js(TypeError, () => {
      let request = new XMLHttpRequest();
      request.open('GET', 'https://trusttoken.example');
      request.setTrustToken({
        type: "send-redemption-record",
        issuers: ["http://not-secure.com"]
      });
    });
  }, 'Trust Tokens operations require secure issuer URLs, if provided.');

  test(() => {
    let request = new XMLHttpRequest();
    request.open('GET', 'https://trusttoken.example');
    request.setTrustToken({
      type: "send-redemption-record",
      issuers: ["http://localhost"]
    });
  }, 'Since localhost URLs are potentially trustworthy, setting an issuer to localhost should succeed.');
</script>
